Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214630.roa
File: AS214630.roa (raw, json)
Hash identifier: nqIiOe22dRkEyuPMluFzw0ae2cR1PAs2Nvv0eCnkyqE=
Subject key identifier: 88:C4:FE:7D:E2:F6:04:3B:93:46:87:8C:06:30:A7:B6:F0:FC:8A:D8
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 322BC3DCA927EDCAB28695F4A646F4B45BA81179
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214630.roa
Signing time: Mon 29 Sep 2025 19:51:51 +0000
ROA not before: Mon 29 Sep 2025 19:46:51 +0000
ROA not after: Mon 28 Sep 2026 19:51:51 +0000
asID: 214630
IP address blocks: 2a06:9f43::/32 maxlen: 48
2a09:54c0::/32 maxlen: 48
2a0a:6047::/32 maxlen: 48
2a0d:d906::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Oct 2025 13:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:2b:c3:dc:a9:27:ed:ca:b2:86:95:f4:a6:46:f4:b4:5b:a8:11:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Sep 29 19:46:51 2025 GMT
Not After : Sep 28 19:51:51 2026 GMT
Subject: CN=88C4FE7DE2F6043B9346878C0630A7B6F0FC8AD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:56:64:ca:06:2f:35:b2:9b:a3:21:69:3f:96:
d0:7b:27:2a:d0:a6:5b:b0:1c:4b:66:e5:26:65:a2:
ba:4d:ba:6b:73:51:3d:59:d9:9c:55:a0:a0:1b:bb:
53:00:20:f7:ba:5c:1c:ae:e8:7c:31:48:48:7a:ad:
21:73:25:7a:a4:44:6a:02:db:b7:78:c9:4f:75:3c:
67:f7:1a:7a:28:59:78:b2:c7:46:ef:20:8c:8c:14:
32:89:ea:c7:07:58:a9:51:5d:8b:00:3c:d5:1d:f6:
59:bb:62:05:14:5d:d0:67:f8:1a:91:04:90:0c:23:
b1:b7:2d:de:d7:56:e1:cf:96:74:c7:b1:1e:d2:35:
04:05:71:db:6a:93:ea:0d:01:b2:c4:b6:0c:76:11:
43:16:a5:88:4b:36:a6:08:6f:bb:e1:8d:ec:2c:15:
db:e8:64:ea:90:da:d7:76:8b:00:ef:6e:b7:5c:60:
1b:4e:7f:84:c3:bc:ed:ba:22:5f:67:48:12:5d:c1:
25:ca:2b:3a:b0:48:02:bd:c7:50:a5:44:ce:2c:b1:
1e:5f:30:5b:9a:5c:fd:34:4a:53:4b:8e:32:bd:c9:
4f:06:e1:39:98:f1:91:40:20:87:56:53:65:b1:26:
21:fc:91:aa:7e:87:36:79:47:b9:9e:d0:cd:a7:93:
af:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C4:FE:7D:E2:F6:04:3B:93:46:87:8C:06:30:A7:B6:F0:FC:8A:D8
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9f43::/32
2a09:54c0::/32
2a0a:6047::/32
2a0d:d906::/32
Signature Algorithm: sha256WithRSAEncryption
c5:c4:70:56:6a:3d:79:b5:f0:e6:8f:ca:69:ba:fb:1e:7e:90:
b6:7c:f6:0e:b6:90:a2:a3:3c:c4:a3:f6:ac:ec:4d:66:97:ee:
da:65:36:3f:85:e0:20:f4:1f:d4:95:5c:9f:2d:61:00:ec:a4:
1c:1b:3a:7d:b8:4c:a4:76:eb:8a:ed:6e:08:31:0c:e3:36:7f:
34:be:22:c3:b5:38:c9:83:f3:2a:23:8f:d3:43:41:7d:75:b1:
42:79:e2:32:3b:ed:e8:48:95:bd:a3:3d:45:31:f6:a2:22:a0:
96:06:d1:4b:8c:64:7d:11:10:90:1b:bf:d8:e9:5c:cc:c2:a9:
c4:e9:f2:12:95:12:ad:2d:65:c6:c4:39:65:4b:a6:77:79:fd:
d3:ce:08:db:10:80:48:45:0b:b3:c6:53:15:cc:4c:0f:1c:84:
b7:f8:02:69:49:a6:5f:41:b0:b9:ca:aa:51:f7:af:e4:93:38:
f3:3f:b8:ad:5a:f7:f1:e7:24:da:89:38:fd:4a:7f:bf:03:d5:
d0:c6:ac:7d:cd:d5:0a:79:ec:6f:c2:94:fa:c9:6c:ac:16:b9:
8a:3a:93:14:51:7e:65:ea:1a:c9:bf:d1:7d:33:6b:f0:2e:ee:
71:aa:45:35:50:91:62:f4:ea:5f:42:bc:29:1c:fe:34:95:4d:
60:e1:28:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 8 17:19:34 2025 by rpki-client